7.8
CVE-2018-17898
- EPSS 0.28%
- Veröffentlicht 12.10.2018 14:29:01
- Zuletzt bearbeitet 21.11.2024 03:55:09
- Quelle ics-cert@hq.dhs.gov
- Teams Watchlist Login
- Unerledigt Login
Yokogawa STARDOM Controllers FCJ,FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The controller application fails to prevent memory exhaustion by unauthorized requests. This could allow an attacker to cause the controller to become unstable.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Yokogawa ≫ Fcj Firmware Version <= r4.10
Yokogawa ≫ Fcn-100 Firmware Version <= r4.10
Yokogawa ≫ Fcn-rtu Firmware Version <= r4.10
Yokogawa ≫ Fcn-500 Firmware Version <= r4.10
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.28% | 0.487 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
CWE-400 Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.